Hacker News new | comments | show | ask | jobs | submit login

It's better to use double-opt-in:

1) Enter email on web page.

2) Open confirmation link in email inbox.

If you skip second step - there is a risk that email ends up in spam folder and is constantly delivered there. Another risk - user did not really request your subscription. That would often result in your emails being marked as spam.

Yeah, I guess the biggest issue is someone plugging in john@acmecorp.com just to test the subscription form, and then actual John getting a maillist message and tagging it as a spam. The question here is if the same John would or would not tag a plain confirmation message as spam too, and I suspect that he would, in which case what I wrote above is no worse than a double-opt-in in edge cases.

Except that you continue to waste the resources of both acmecorp and yourself by sending mail that no one ever sees.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | DMCA | Apply to YC | Contact